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DETAILED ACTION 

This first non-final action is in response to the original filing of 12/02/2003. Claims 1-6 are 
pending and have been considered as follows. 

Examiner's Notes 

1 . The Applicant appears to be attempting to invoke 35 U.S.C. H2 6 th paragraph in Claims 
5 & 6 by using "means-plus-function" language. However, the Examiner notes that the only 
"means" for performing these cited functions in the specification appears to be computer 
program modules. While the claims pass the first test of the three-prong test used to determine 
invocation of paragraph 6, since no other specific structural limitations are disclosed in the 
specification, the claims do not meet the other tests of the three-prong test. Therefore, 35 U.S.C. 
1 12 6 th paragraph has not been invoked when considering these claims below. 

Claim Objections 

2. Claims 5 & 6 are objected to under 37 CFR 1 .75(c), as being of improper dependent form 
for failing to further limit the subject matter of a previous claim. Applicant is required to cancel 
the claim(s), or amend the claim(s) to place the claim(s) in proper dependent form, or rewrite the 
claim(s) in independent form. The examiner notes that Claim 5 discloses, "the means for 
performing of twisted sampling and submitting data to the server according to claim 3," and, "the 
means for the client verification and/or identification according to claim 4," which fails as being 
of proper dependent form due to Claim 5 being a system where as Claims 3 and 4 are methods. 
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The examiner further notes that Claim 6 discloses, "the computer-readable program code for 
performing twisted sampling and submitting data to server according to claim 3," and, "the 
computer-readable program code for client verification and/or identification according to claim 
4," which fails as being of proper dependent form due to Claim 6 being a computer program 
where as Claims 3 and 4 are methods. It is noted by the examiner that Claims 5 and 6 will be 
considered as independent claims where Claim 5 is a system and Claim 6 is a computer program 
with computer executable instructions stored on a computer readable storage medium for the 
rejections below. 

Claim Rejections - 35 USC § 101 
3. 35 U.S.C. 101 reads as follows: 

Whoever invents or discovers any new and useful process, machine, manufacture, or composition of matter, or 
any new and useful improvement thereof, may obtain a patent therefor, subject to the conditions and 
requirements of this title. 

- Claim 6 is rejected under 35 U.S.C. 101 because the claimed invention is directed to non- 
statutory subject matter. Claim 6 of this application discloses a computer program 
comprising, "the computer-readable program code for performing twisted sampling 
and submitting data to server according to claim 3; and the computer-readable 
program code for client verification and or identification according to claim 4," which 
is non-statutory subject matter in accordance to 35 U.S.C. 101. 
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Claim Rejections - 35 USC § 102 

4. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 1 02 that form the 
basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public use or on 
sale in this country, more than one year prior to the date of application for patent in the United States. 

5. Claims 1-6 are rejected under 35 U.S.C. 102(b) as being anticipated by Buffam (US- 
6185316-B1). 

Claim 1: 

Buffam discloses a method for securely submitting biometric data from a client to a server 
comprising the steps of, 

- Fig 8 (i.e. "performing sampling of a real biometric characteristic at the client") [Fig 
8]. 

- "Typically, an original image is represented by many discrete information points, similar 
to grid points on a map. True image points can be extracted from the information points 
on the basis of pragmatic considerations, such as data reduction. The set of true image 
points can be stored as a master template uniquely representative of the original image. 
False image points are generated and are selectively interposed among a chosen subset of 
the true image points, forming a transient template. The false image points also may be 
transformed to produce an encoding key. 

It is most preferred that the encoding key itself is the result of imposing a hashing 
function on an ordered set of false image points that have been conditioned to be non- 
coincident with any true image point in the original image and to be plausible impostors 
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of the true image points. When properly interposed among the chosen true image points, 
the false image points are essentially indistinguishable from the true image points without 
reference to the master template, the original image, or complete knowledge of the false 
image points. These false image points thus form the basis for the secret encryption key. 
The encoding key can be used to encrypt a portion of plaintext into cipher text, and at 
least the cipher text portion can be added to the minutia points in the transient template" 
(i.e. "shuffling arrays of real biometric characteristics in the sequence known at client 
only to thereby generate twisted biometric data") [column 12 lines 4-27]. 

- Fig 1 1 (i.e. "submitting the twisted biometric data from the client to the server") [Fig 
11 Box#ll]. 

Claim 2: 

Buffam discloses a method for securely submitting biometric data from a client to a server as in 
Claim 1 above further comprising the steps of, 

- "Typically, an original image is represented by many discrete information points, similar 
to grid points on a map. True image points can be extracted from the information points 
on the basis of pragmatic considerations, such as data reduction. The set of true image 
points can be stored as a master template uniquely representative of the original image. 
False image points are generated and are selectively interposed among a chosen subset of 
the true image points, forming a transient template. The false image points also may be 
transformed to produce an encoding key. 

It is most preferred that the encoding key itself is the result of imposing a hashing 
function on an ordered set of false image points that have been conditioned to be non- 
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coincident with any true image point in the original image and to be plausible impostors 
of the true image points. When properly interposed among the chosen true image points, 
the false image points are essentially indistinguishable from the true image points without 
reference to the master template, the original image, or complete knowledge of the false 
image points. These false image points thus form the basis for the secret encryption key. 
The encoding key can be used to encrypt a portion of plaintext into cipher text, and at 
least the cipher text portion can be added to the minutia points in the transient template" 
(i.e. "shuffling sequence is calculated at client on the base of the value of a secret object 
created at the client and known to client only") [column 12 lines 4-27]. 
Claim 3: 

Buffam discloses a method for securely submitting biometric data from a client to a server as in 
Claim 2 above further comprising the steps of, 

- "Typically, an original image is represented by many discrete information points, similar 
to grid points on a map. True image points can be extracted from the information points 
on the basis of pragmatic considerations, such as data reduction. The set of true image 
points can be stored as a master template uniquely representative of the original image. 
False image points are generated and are selectively interposed among a chosen subset of 
the true image points, forming a transient template. The false image points also may be 
transformed to produce an encoding key. 

It is most preferred that the encoding key itself is the result of imposing a hashing 
function on an ordered set of false image points that have been conditioned to be non- 
coincident with any true image point in the original image and to be plausible impostors 
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of the true image points. When properly interposed among the chosen true image points, 
the false image points are essentially indistinguishable from the true image points without 
reference to the master template, the original image, or complete knowledge of the false 
image points. These false image points thus form the basis for the secret encryption key. 
The encoding key can be used to encrypt a portion of plaintext into cipher text, and at 
least the cipher text portion can be added to the minutia points in the transient template" 
(i.e. "step of multiplying the arrays of biometric characteristics by the sequences of 
numbers fixed for each type of array and known at the client only") [column 12 lines 4- 
27]. 
Claim 4: 

Buffam discloses a method for securely submitting biometric data from a client to a server as in 
Claim 3 above further comprising the steps of, 

- Fig 1 1 (i.e. "step of submitting of twisted biometric data is followed by the step of 
comparing this data against the samples of twisted biometric data saved at the server 
previously, in such a way, that the result of the verification and or identification 
depends neither on the specific sequence in which biometric arrays were shuffled on 
the client, nor on the specific sequence of numbers used on the client to change the 
values of the arrays") [Fig 1 1 Box# 11]. 

ClaimS: 

Buffam discloses a system for secure use of biometric data comprising, 

- "Typically, an original image is represented by many discrete information points, similar 
to grid points on a map. True image points can be extracted from the information points 
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on the basis of pragmatic considerations, such as data reduction. The set of true image 
points can be stored as a master template uniquely representative of the original image. 
False image points are generated and are selectively interposed among a chosen subset of 
the true image points, forming a transient template. The false image points also may be 
transformed to produce an encoding key. 

It is most preferred that the encoding key itself is the result of imposing a hashing 
function on an ordered set of false image points that have been conditioned to be non- 
coincident with any true image point in the original image and to be plausible impostors 
of the true image points. When properly interposed among the chosen true image points, 
the false image points are essentially indistinguishable from the true image points without 
reference to the master template, the original image, or complete knowledge of the false 
image points. These false image points thus form the basis for the secret encryption key. 
The encoding key can be used to encrypt a portion of plaintext into cipher text, and at 
least the cipher text portion can be added to the minutia points in the transient template" 
(i.e. "the means for performing of twisted sampling and submitting data to the server 
according to claim 3") [column 12 lines 4-27]. 
- "To self-authenticate, the claimant image is used to produce corresponding true image 
points that are extracted from the true image points of the original image held in the 
transient template. The residual image points include false image points. Candidate false 
image points (or minutiae) can be iteratively selected, and hashed to form a decryption 
key, with the decryption key operating on the cipher text to produce a result which is 
compared with the original, known plaintext. If the decryption result does not favorably 
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compare, the steps of candidate image point reselection, decryption key generation, 
cipher text decryption, and comparison with the known plaintext continues, until the 
pools of candidate false image points is exhausted, or a policy limitation is reached" (i.e. 
"the means for client verification and or identification according to claim 4") [column 
13 lines 6-19]. 
Claim 6: 

Buffam discloses a computer program for secure use of biometric data comprising, 

- "Typically, an original image is represented by many discrete information points, similar 
to grid points on a map. True image points can be extracted from the information points 
on the basis of pragmatic considerations, such as data reduction. The set of true image 
points can be stored as a master template uniquely representative of the original image. 
False image points are generated and are selectively interposed among a chosen subset of 
the true image points, forming a transient template. The false image points also may be 
transformed to produce an encoding key. 

It is most preferred that the encoding key itself is the result of imposing a hashing 
function on an ordered set of false image points that have been conditioned to be non- 
coincident with any true image point in the original image and to be plausible impostors 
of the true image points. When properly interposed among the chosen true image points, 
the false image points are essentially indistinguishable from the true image points without 
reference to the master template, the original image, or complete knowledge of the false 
image points. These false image points thus form the basis for the secret encryption key. 
The encoding key can be used to encrypt a portion of plaintext into cipher text, and at 



Application/Control Number: 1 0/725, 1 1 6 Page 1 0 

Art Unit: 21 12 

least the cipher text portion can be added to the minutia points in the transient template" 
(i.e. "the computer-readable program code for performing twisted sampling and 
submitting data to server according to claim 3") [column 12 lines 4-27]. 
- "To self-authenticate, the claimant image is used to produce corresponding true image 
points that are extracted from the true image points of the original image held in the 
transient template. The residual image points include false image points. Candidate false 
image points (or minutiae) can be iteratively selected, and hashed to form a decryption 
key, with the decryption key operating on the cipher text to produce a result which is 
compared with the original, known plaintext. If the decryption result does not favorably 
compare, the steps of candidate image point reselection, decryption key generation, 
cipher text decryption, and comparison with the known plaintext continues, until the 
pools of candidate false image points is exhausted, or a policy limitation is reached" (i.e. 
"the computer-readable program code for client verification and or identification 
according to claim 4") [column 13 lines 6-19]. 



Conclusion 

6. The prior art made of record and not relied upon is considered pertinent to the applicant's 
disclosure. 

a. Gennaro (US-63 1 7834-B 1 ) 

b. Thomlinson OJS-6272631-Bn 
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7. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Examiner Oscar Louie whose telephone number is 571-270-1684. 
The examiner can normally be reached Monday through Thursday from 7:30 AM to 4:00 PM. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, James Myhre, can be reached at 571-270-1065. The fax phone number for Formal or 
Official faxes to Technology Center 2100 is 571-273-8300. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private 
PAIR system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you 
would like assistance from a USPTO Customer Service Representative or access to the 
automated information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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